Re: [RFC] ext2 and ext3 block reservations can be bypassed

[Kasper Dupont <kasperd@daimi.au.dk>]

Mark Mielke wrote:
> 
> 1) You can always submit a patch, and see whether other people approve of it.

I might decide to do that. But I wouldn't spend the time
without first knowing if:
a) There were some very good reasons not to change it.
b) Somebody knowing this code by heart could write a
   patch in five minutes.

> 
> 2) If you won't do it, why would somebody else working on something that
>    provides lower latency to user process response time, or improvement
>    to the IDE drivers, take the time to deal with this issue?

I don't intend to try to force somebody to do it, if
they have more important things to do.

> 
> As it is, there are plenty of other denial-of-service type attacks
> that can be performed that would be more effective than the 'exploit'
> you have mentioned. Your proposal would need to be 'fix them all', if
> your complaint is that Linux has a security hole.

It surely would be nice to prevent all DoS attacks. But
of course that would require a lot of work. However I
think most other DoS attacks could be solved by a reboot.

> 
> If you complaint is that an administrator might mistakenly believe
> that it is a security feature, I suggest your understand that this is
> merely one issue of quite a few. If the administrator is not aware of
> issues such as these, perhaps they should not be an administrator?

We cannot blame administrators before the documentation
has been changed.

-- 
Kasper Dupont -- der bruger for meget tid på usenet.
For sending spam use mailto:razor-report@daimi.au.dk